Paper 2012/209
Adaptive Preimage Resistance Analysis Revisited:\ Requirements, Subtleties and Implications
Donghoon Chang and Moti Yung
Abstract
In the last few years, the need to design new cryptographic hash
functions has led to the intense study of when desired hash
multi-properties are preserved or assured under compositions and
domain extensions. In this area, it is important to identify the
exact notions and provide often complex proofs of the resulting
properties. Getting this analysis right (as part of provable security
studies) is, in fact, analogous to cryptanalysis. We note that it is
important and quite subtle to get indeed the ``right'' notions and
properties, and ``right'' proofs in this relatively young
area. Specifically, the security notion we deal with is ``adaptive
preimage resistance'' (apr) which was introduced by Lee and Park as an extension of ``preimage resistance'' (pr). In
Eurocrypt 2010, in turn, Lee and Steinberger already
used the apr security notion to prove ``preimage awareness'' and
``indifferentiable security'' of their new double-piped mode of
operation. They claimed that if
Metadata
- Available format(s)
-
PDF PS
- Category
- Secret-key cryptography
- Publication info
- Published elsewhere. Unknown where it was published
- Keywords
- hash functionadaptive preimage resistance
- Contact author(s)
- pointchang @ gmail com
- History
- 2012-04-22: received
- Short URL
- https://ia.cr/2012/209
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2012/209, author = {Donghoon Chang and Moti Yung}, title = {Adaptive Preimage Resistance Analysis Revisited:\\ Requirements, Subtleties and Implications}, howpublished = {Cryptology {ePrint} Archive, Paper 2012/209}, year = {2012}, url = {https://eprint.iacr.org/2012/209} }